[Rt-commit] rt annotated tag, rt-4.0.25rc2, created. rt-4.0.25rc2

Shawn Moore shawn at bestpractical.com
Thu Jun 15 14:53:34 EDT 2017


The annotated tag, rt-4.0.25rc2 has been created
        at  159705ab305c7f49c16a84139a92c9d8c0630e17 (tag)
   tagging  0c49a075b6a92931737fd4f20e57eeef46dde1e7 (commit)
  replaces  rt-4.0.25rc1
 tagged by  Shawn M Moore
        on  Thu Jun 15 14:34:23 2017 -0400

- Log -----------------------------------------------------------------
Version 4.0.25rc2
-----BEGIN PGP SIGNATURE-----
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=n3eM
-----END PGP SIGNATURE-----

Aaron Kondziela (5):
      Fix CSRF token leak vulnerability
      Escape dashboard saved search descriptions
      Correct name of config option RestrictLoginReferrer
      Avoid Email::Address denial of service attacks
      Fix timing sidechannel vulnerability in password checking

Alex Vandiver (1):
      Pass a fully-qualified path when requiring RT::Generated

Shawn M Moore (9):
      Avoid potential XSS with several content types
      Update copyright for 2017
      Merge branch 'security/4.0/csrf-leak' into security/4.0.25-releng
      Merge branch 'security/4.0/email-parse-dos' into security/4.0.25-releng
      Merge branch 'security/4.0/attachment-xss-fix' into security/4.0.25-releng
      Merge branch 'security/4.0/password-timing-attack' into security/4.0.25-releng
      Merge branch 'security/4.0/dash-subscription' into security/4.0.25-releng
      Merge branch 'security/4.0/referrer-login' into security/4.0.25-releng
      Merge branch 'security/4.0.25-releng' into 4.0.25-releng

-----------------------------------------------------------------------


More information about the rt-commit mailing list